The DLP 14.x Upgrader fails to push the Detection server upgrade packages to the detection servers, which then hangs up the enforce upgrader

Article Id:169662

Status:Published

Updated On:07-02-2020 18:19

Legacy Id:TECH246748

Products:

Data Loss Prevention Enforce

Issue/Introduction:

The DLP Enforce Detection server upgrade hangs when deploying the detection server upgrader packages. The Upgrade can potentially be stuck on this process for hours, or sometimes days if left running.

Cause:

This is caused by the Enforce Server upgrade connection timing out after 30 minutes, which then causes the failed detection server package push.

Note: When pushing out to a large number of detection servers, or if some are in remote or differing geographical locations, it can often take additional time to push the 600 or 700MB package to all Detection servers.

Environment:

Windows or Linux DLP Enforce Systems.

Resolution:

1. Go on to the Enforce server and navigate into the Tomcat Structure. Windows Drive:\SymantecDLP\Protect\tomcat\webapps\ProtectManager\WEB-INF\web.xml Linux: /opt/SymantecDLP/Protect/tomcat/webapps/ProtectManager/WEB-INF/web.xml file: Go into or modify the web.xml file section